name	prouver-verifier
description	How to verify implementation with evidence — AVANT/APRÈS methodology, constraint synthesis, CI gate, PR body gate, issue comment gate, and closure gate. Proves code works with concrete evidence, not assumptions.
allowed-tools	Bash, WebFetch, Read

Implementation Verification — Evidence-Based Proof

What this covers

How to prove that code works with concrete evidence. Code written ≠ done. Verified with AVANT/APRÈS evidence = done.

Core principle

"No error in logs" ≠ proof. Trigger the scenario, see a POSITIVE signal.

AVANT/APRÈS methodology (bug fixes)

AVANT: failing test (RED) OR log showing broken behavior — code diff ≠ proof
APRÈS: staging log / curl output / HTTP status AFTER deploying AND triggering the scenario

Same-source rule

Bug found in logs → verify fix in logs
Bug in screenshot → verify by screenshot
Curl result ≠ substitute for original observation source

Constraint synthesis (write BEFORE checking logs)

Force yourself to write expected signals BEFORE looking:

Functional: "POST /api/X returns 201 with body.data.id"
Behavioral: "Log contains '[MESSAGE]' after triggering"
Negative: "Old error '[ERROR]' no longer appears"

Then check logs. Match or miss = clear signal.

Attacker perspective (security fixes)

"If I were an attacker, what test proves my fix blocks me?" Write THAT test. Can't write it → fix isn't proven.

Verification gates

CI gate

gh run list --branch $BRANCH --limit 1

Status must be completed/success. If failed → identify root cause, fix before PR.

"CI is running" ≠ done.

PR body gate

Closes #XXX present for every linked issue?
No WIP marker? (WIP, [WIP], wip)
Draft vs ready correct?

Issue comment gate

Add a comment on EVERY linked issue with:

Staging PID (process/deploy ID)
AVANT/APRÈS evidence

Do NOT wait for post-merge. Batch PRs → each issue gets its own comment.

Closure gate

gh issue view <N> --comments

Does a comment with staging PID + AVANT/APRÈS exist? No → add NOW before merge.

Post-merge closure includes:

What was fixed (1 line)
Concrete observed evidence (logs / curl / DOM — NOT code diffs)
PR/SHA reference

Closure without evidence = not closed.

Quick verification (trivial tasks)

Compile OK locally
Push to branch
Verify no regression (existing tests still green)

No CI gate mandatory, no staging mandatory.

Output format

## VERIFICATION

### AVANT (before fix)
<log excerpt / curl output / screenshot>

### APRÈS (after fix, on staging)
<log excerpt / curl output / screenshot>

### Constraints (written before check)
1. Functional: <expected signal>
2. Behavioral: <expected signal>
3. Negative: <expected absence>

### CI gate
- Run: <URL>
- Status: <success | in_progress | failed>

### PR body gate
- [✓/✗] Closes #XXX present
- [✓/✗] No WIP marker

### Issue comments
- #<N>: comment added with PID + AVANT/APRÈS

### VERDICT
<DONE | PENDING: remaining items>

How to verify

AVANT state captured (before fix)?
APRÈS state captured (after fix, on staging)?
Constraints written BEFORE checking logs?
CI gate passed?
PR body gate passed (AVANT/APRÈS evidence)?
Issue comment gate passed (evidence posted)?
VERDICT issued (DONE / NOT-YET)?

Staging evidence capture — three modes

Never sleep-and-poll. Use Monitor for streaming events, Bash background for one-shot waits.

Mode 1: Snapshot (last N lines)

When: you've already deployed and just need to read what happened.

journalctl -u <service> -n 50 --no-pager

Use Bash (not Monitor, not background).

Mode 2: Stream (watch for specific event)

When: you've just triggered a scenario and want to see the log line confirming it.

Monitor(
  description: "staging logs after trigger",
  persistent: false,
  timeout_ms: 60000,
  command: "journalctl -u <service> -f --since now | grep --line-buffered 'KEYWORD'"
)

Critical: grep --line-buffered — without it, pipe buffering delays events minutes.

Mode 3: One-shot wait (deploy done?)

When: long-running command that blocks until complete (deploy script, test run).

Bash(command="deploy-staging.sh", run_in_background=true)

→ Returns PID immediately. You get notified when it completes.

Anti-patterns

sleep N && tail — harness blocks it. Use Monitor or background instead.
Monitor for deploys — Monitor doesn't wait synchronously. Use run_in_background for deploys.
No grep --line-buffered — pipe buffering delays events by minutes
Indefinite Monitor — always set timeout_ms (60s typical)
Too many Monitors — auto-killed by harness. One event at a time.

Common mistakes

"No error in logs": not proof — trigger the scenario and look for positive signal
Code diff as proof: showing what changed ≠ showing it works
Missing AVANT: without before-state, can't prove improvement
Skipping issue comments: auto-close won't add evidence — do it manually

name	prouver-verifier
description	How to verify implementation with evidence — AVANT/APRÈS methodology, constraint synthesis, CI gate, PR body gate, issue comment gate, and closure gate. Proves code works with concrete evidence, not assumptions.
allowed-tools	Bash, WebFetch, Read

Implementation Verification — Evidence-Based Proof

What this covers

How to prove that code works with concrete evidence. Code written ≠ done. Verified with AVANT/APRÈS evidence = done.

Core principle

"No error in logs" ≠ proof. Trigger the scenario, see a POSITIVE signal.

AVANT/APRÈS methodology (bug fixes)

AVANT: failing test (RED) OR log showing broken behavior — code diff ≠ proof
APRÈS: staging log / curl output / HTTP status AFTER deploying AND triggering the scenario

Same-source rule

Bug found in logs → verify fix in logs
Bug in screenshot → verify by screenshot
Curl result ≠ substitute for original observation source

Constraint synthesis (write BEFORE checking logs)

Force yourself to write expected signals BEFORE looking:

Functional: "POST /api/X returns 201 with body.data.id"
Behavioral: "Log contains '[MESSAGE]' after triggering"
Negative: "Old error '[ERROR]' no longer appears"

Then check logs. Match or miss = clear signal.

Attacker perspective (security fixes)

"If I were an attacker, what test proves my fix blocks me?" Write THAT test. Can't write it → fix isn't proven.

Verification gates

CI gate

gh run list --branch $BRANCH --limit 1

Status must be completed/success. If failed → identify root cause, fix before PR.

"CI is running" ≠ done.

PR body gate

Closes #XXX present for every linked issue?
No WIP marker? (WIP, [WIP], wip)
Draft vs ready correct?

Issue comment gate

Add a comment on EVERY linked issue with:

Staging PID (process/deploy ID)
AVANT/APRÈS evidence

Do NOT wait for post-merge. Batch PRs → each issue gets its own comment.

Closure gate

gh issue view <N> --comments

Does a comment with staging PID + AVANT/APRÈS exist? No → add NOW before merge.

Post-merge closure includes:

What was fixed (1 line)
Concrete observed evidence (logs / curl / DOM — NOT code diffs)
PR/SHA reference

Closure without evidence = not closed.

Quick verification (trivial tasks)

Compile OK locally
Push to branch
Verify no regression (existing tests still green)

No CI gate mandatory, no staging mandatory.

Output format

## VERIFICATION

### AVANT (before fix)
<log excerpt / curl output / screenshot>

### APRÈS (after fix, on staging)
<log excerpt / curl output / screenshot>

### Constraints (written before check)
1. Functional: <expected signal>
2. Behavioral: <expected signal>
3. Negative: <expected absence>

### CI gate
- Run: <URL>
- Status: <success | in_progress | failed>

### PR body gate
- [✓/✗] Closes #XXX present
- [✓/✗] No WIP marker

### Issue comments
- #<N>: comment added with PID + AVANT/APRÈS

### VERDICT
<DONE | PENDING: remaining items>

How to verify

AVANT state captured (before fix)?
APRÈS state captured (after fix, on staging)?
Constraints written BEFORE checking logs?
CI gate passed?
PR body gate passed (AVANT/APRÈS evidence)?
Issue comment gate passed (evidence posted)?
VERDICT issued (DONE / NOT-YET)?

Staging evidence capture — three modes

Never sleep-and-poll. Use Monitor for streaming events, Bash background for one-shot waits.

Mode 1: Snapshot (last N lines)

When: you've already deployed and just need to read what happened.

journalctl -u <service> -n 50 --no-pager

Use Bash (not Monitor, not background).

Mode 2: Stream (watch for specific event)

When: you've just triggered a scenario and want to see the log line confirming it.

Monitor(
  description: "staging logs after trigger",
  persistent: false,
  timeout_ms: 60000,
  command: "journalctl -u <service> -f --since now | grep --line-buffered 'KEYWORD'"
)

Critical: grep --line-buffered — without it, pipe buffering delays events minutes.

Mode 3: One-shot wait (deploy done?)

When: long-running command that blocks until complete (deploy script, test run).

Bash(command="deploy-staging.sh", run_in_background=true)

→ Returns PID immediately. You get notified when it completes.

Anti-patterns

sleep N && tail — harness blocks it. Use Monitor or background instead.
Monitor for deploys — Monitor doesn't wait synchronously. Use run_in_background for deploys.
No grep --line-buffered — pipe buffering delays events by minutes
Indefinite Monitor — always set timeout_ms (60s typical)
Too many Monitors — auto-killed by harness. One event at a time.

Common mistakes

"No error in logs": not proof — trigger the scenario and look for positive signal
Code diff as proof: showing what changed ≠ showing it works
Missing AVANT: without before-state, can't prove improvement
Skipping issue comments: auto-close won't add evidence — do it manually

prouver-verifier

Implementation Verification — Evidence-Based Proof

What this covers

Core principle

AVANT/APRÈS methodology (bug fixes)

Same-source rule

Constraint synthesis (write BEFORE checking logs)

Attacker perspective (security fixes)

Verification gates

CI gate

PR body gate

Issue comment gate

Closure gate

Quick verification (trivial tasks)

Output format

How to verify

Staging evidence capture — three modes

Mode 1: Snapshot (last N lines)

Mode 2: Stream (watch for specific event)

Mode 3: One-shot wait (deploy done?)

Anti-patterns

Common mistakes

Implementation Verification — Evidence-Based Proof

What this covers

Core principle

AVANT/APRÈS methodology (bug fixes)

Same-source rule

Constraint synthesis (write BEFORE checking logs)

Attacker perspective (security fixes)

Verification gates

CI gate

PR body gate

Issue comment gate

Closure gate

Quick verification (trivial tasks)

Output format

How to verify

Staging evidence capture — three modes

Mode 1: Snapshot (last N lines)

Mode 2: Stream (watch for specific event)

Mode 3: One-shot wait (deploy done?)

Anti-patterns

Common mistakes